Configuring Authentication Rejection Messages
When SBR Carrier issues an Access-Reject message in response to a failed authentication request, it can identify the reason why the request was rejected. You can configure the message text returned to the RADIUS client (and possibly to the user, if the RADIUS client forwards the message) when a particular type of error occurs. This text is inserted into the standard RADIUS attribute Reply-Message within the Access-Reject response.
To configure the text for authentication rejection messages using the Web GUI:
Select RADIUS Configuration > Authentication Policies > Reject Messages.
The Reject Messages page (Figure 91) appears.
In the Unknown User field, enter the message text that SBR Carrier returns when the username and password authentication failed.
In the CheckList Failure field, enter the message text that SBR Carrier returns when the user was authenticated but is being rejected because the RADIUS request did not fulfill the requirements of the check list.
In the Invalid Attribute field, enter the message text that SBR Carrier returns when the request contained an attribute in violation of the RADIUS specification.
In the Other field, enter the message text that SBR Carrier returns when some other error, such as a resource failure, occurred.
Click Save to save the configuration.
To revert to the previous settings, click Reset.
When you make changes to the Reject Messages page, the SBR Carrier audit log does not record specific information about the performed actions.